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earned patent term adjustment. See 37 CFR 1.704(b). 
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I) S Responsive to communication^) filed on 16 March 2005 . 
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DETAILED ACTION 



1. 



This action is in reply to applicant's correspondence of 16 March 2005. 



2. 



Claims 1-29 are pending for examination. 



3. 



Claims 1-29 remain rejected. 



Oaim Rejections - 35 USC §112 



4. The claim 2 rejection under 35 U.S.C. 1 12, second paragraph is withdrawn. 

Oaim Rejections - 35 USC §102 
The following is a quotation of the appropriate paragraphs of 35 U.S.C. 102 that form the 
basis for the rejections under this section made in this Office action: 

(b) the invention was patented or described in a printed publication in this or a foreign country or in public use or on 
sale in this country, more than one year prior to the date of application for patent in the United States. 

5. Claims 1-29 are rejected under 35 U.S.C. 102(b) as being anticipated by Gupta et al, U.S. 
Patent 6,389,532 Bl. 

6. As per claim 1 ; "A method for message authentication [Abstract, filtering so as to 
forward packets (i.e., messages) upon checking via public key encryption signature verification], 
comprising: 

generating a key pair associated with a domain, wherein a public component of the key 
pair is accessible to a domain name server (DNS) that is associated with the domain [Abstract, 
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figures 4-8 and accompanying descriptions, whereas the key pair generated is clearly associated 
with the domain per se, and the DNS uses the public key to verify the signature.]; 

if a message originates from a sender's address associated with the domain, employing a 
private component of the key pair to 

digitally sign the message and 

forwarding the digitally signed message towards a recipient of the message 
[Abstract, figures 4-8 and accompanying descriptions, whereas the key pair generated is 
used to verify for the purpose of filtering messages (i.e., such that a message is forwarded 
or not as a function of the filtering results).]; and 

if the public component stored with the DNS verifies that the digitally signed message 
originated from the domain associated with the sender's address, providing the verified 
digitally signed message to the recipient [Abstract, figures 4-8 and accompanying 
descriptions, whereas again, the purpose of filtering messages is to enable forwarding or 
not as a function of the filtering results.]."; 

Further, as per claim 19; this claim is the method embodied software (i.e., network 
download, etc., col. 2,lines 3-14) for the method claim 1 above, and is rejected for the same 
reasons provided for the claim 1 rejection; 

Further, as per claim 29; this claim is the means plus function claim for the method claim 
1 above, and is rejected for the same reasons provided for the claim 1 rejection. 
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7. Claim 2 additionally recites the limitation that; "The method of Claim 1, farther 
comprising employing a text record to make available the public component of the key pair, 
wherein the text record is accessible to the DNS.". 

The teachings of Gupta et al are directed towards such limitations (i.e., figures 4-8, and 
particularly figure 5, and accompanying descriptions, whereas the 'install the public keys... ' 
which clearly as stored in memory so as to be transferred from, as broadly interpreted by the 
examiner would clearly encompass 6 ... a text record . . . DNS and which includes . . . public ... of 
the key pair ...'.). 

8. Claim 3 additionally recites the limitation that; "The method of Claim 1, further 
comprising generating a selector that is associated with the key pair, wherein the selector is 
employable to identify the key pair's public component for accessing by the DNS.". 

The teachings of Gupta et al are directed towards such limitations (i.e., figures 4-8, and 
particularly figure 5, and accompanying descriptions, whereas the 'distribute . . . keys. . . ' which 
clearly indicate that the key pairs can be selected as a function of (i.e., in a multicast, at the very 
least, environment) specifically designated nodes, as broadly interpreted by the examiner would 
clearly encompass ' . . . selector . . . associated with the key pair, . . . identify the key . . . public 
component ... DNS ...'.). 

Further, as per claim 20; this claim is the method embodied software (i.e., network 
download, etc., col. 2,lines 3-14) for the method claim 3 above, and is rejected for the same 
reasons provided for the claim 3 rejection. 
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9. Claim 4 additionally recites the limitation that; "The method of Claim 3, further 
comprising forming a lookup query for the DNS by combining the selector with the sender's 
address.". 

The teachings of Gupta et al are directed towards such limitations (i.e., figures 4-8, and 
particularly figure 5, and accompanying descriptions, whereas the 'create ... keys ... store in 
indexed tables . . . ' which clearly indicate that the key pairs can be selected from an indexed table 
(i.e., database, flat or otherwise) as a function of specifically designated nodes (i.e., the 
associated IP addresses), as broadly interpreted by the examiner would clearly encompass 
lookup query . . . DNS by combining the selector . . . sender's address ...'.). 

10. Claim 5 additionally recites the limitation that; "The method of Claim 1, further 
comprising employing a mail server associated with the domain to forward the digitally signed 
message towards the recipient of the message.". 

The teachings of Gupta et al are directed towards such limitations (i.e., Abstract, figures 1-8, and 
accompanying descriptions, whereas the \ . . filter point, such as a router or firewall to an 
intranet . . . ' which clearly indicate that the messages pass through controlled intermediaries, as 
broadly interpreted by the examiner would clearly encompass 1 . . . mail server . . . forward the . . . 
message towards the recipient of the message ...'.). 

11. Claim 6 additionally recites the limitation that; "The method of Claim 1, further 
comprising employing a mail server associated with the domain to employ the private 
component of the key pair to digitally sign the message.". 
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The teachings of Gupta et al are directed towards such limitations (i.e., Abstract, figures 1-8, and 
accompanying descriptions, whereas the \. . filter point, such as a router or firewall to an 
intranet . . . ' which clearly indicate that the messages pass through controlling intermediaries, 
such that the filtering done via digitally signed message verification is done by said controlling 
intermediaries, as broadly interpreted by the examiner would clearly encompass 6 . . . mail server 
. . . employ the private . . . key pair to digitally sign the message ...'.). 

12. Claim 7 additionally recites the limitation that; "The method of Claim 1, further 
comprising employing a mail server that is associated with a domain of the recipient to verify the 
domain of origination for the message with the public component of the key pair.". 

The teachings of Gupta et al are directed towards such limitations (i.e., Abstract, figures 1-8, and 
accompanying descriptions, whereas the * . . . filter point, such as a router or firewall to an 
intranet . . . ' which clearly indicate that the messages pass through controlling intermediaries, 
such that the filtering done via digitally signed message verification is done by said controlling 
intermediaries (more particularly in this case 'closer' to the destination then the source), as 
broadly interpreted by the examiner would clearly encompass * . . . mail server . . . recipient to 
verify . . . origination . . . public component . . . key pair ...'.). 

13. Claim 8 additionally recites the limitation that; "The method of Claim 1, further 
comprising employing a mail server that is associated with a domain of the recipient to provide 
the verified digitally signed message to the recipient.". 
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The teachings of Gupta et al are directed towards such limitations (i.e., Abstract, figures 1-8, and 
accompanying descriptions, whereas the \ . . filter point, such as a router or firewall to an 
intranet . . . ' which clearly indicate that the messages pass through controlling intermediaries, 
such that the filtering and subsequent forwarding of the message thereof done via digitally 
signed message verification is done by said controlling intermediaries (more particularly in this 
case 'closer' to the destination then the source), as broadly interpreted by the examiner would 
clearly encompass ' . . . mail server . . . recipient to provide the . . . message to the recipient ...'.). 

14. Claim 9 additionally recites the limitation that; "The method of Claim 1, further 
comprising accessing the public component of the key pair by employing a text record in a look 
up table for the DNS ". 

The teachings of Gupta et al are directed towards such limitations (i.e., figures 4-8, and 
particularly figure 5, and accompanying descriptions, whereas the 'install the public keys. . . ' 
which clearly as stored in memory so as to be transferred from, as broadly interpreted by the 
examiner would clearly encompass 6 . . . accessing . . . public . . . key . . . text record in a look up 
table for the DNS. ...'.). 

15. Claim 10 additionally recites the limitation that; "The method of Claim 1, further 
comprising generating a plurality of key pairs associated with the domain, 

wherein at least two key pairs are associated with at least two different senders and 
wherein each public component of each key pair is accessible by the DNS associated with 
the domain.". 
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The teachings of Gupta et al are directed towards such limitations (i.e., Abstract, figures 1-8, and 
accompanying descriptions, whereas the filter point, such as a router or firewall to an 
intranet . . . ' whereby the messages pass through controlled intermediaries, insofar as the network 
consists of a plurality of sender/recipient nodes of which common DNS/intermediaries (utilized 
in the filtering), clearly teaches the use of the claim limitation plural node aspects (i.e., 
sender/intermediary/recipient in a multicast environment) as broadly interpreted by the examiner, 
and would clearly encompass ' . . . plurality of key pairs . . . at least two different senders . . . key 
. . . accessible by the DNS associated with the domain ...'.); 

Further, as per claim 21; this claim is the method embodied software (i.e., network 
download, etc., col. 2,lines 3-14) for the method claim 10 above, and is rejected for the same 
reasons provided for the claim 10 rejection. 

16. Claim 1 1 additionally recites the limitation that; "The method of Claim 10, further 
comprising separately associating private components of the at least two key pairs with at least 
two mail servers, wherein the at least two mail servers are associated with the domain.". 
The teachings of Gupta et al are directed towards such limitations (i.e., Abstract, figures 1-8, and 
accompanying descriptions, whereas the \ . . filter point, such as a router or firewall to an 
intranet . . . ' whereby the messages pass through controlled intermediaries, insofar as the network 
consists of a plurality of sender/recipient nodes of which common DNS/intermediaries (utilized 
in the filtering, at the individual router or firewall nodes), clearly teaches the use of the claim 
limitation plural node aspects (i.e., sender/intermediary/recipient in a multicast environment) as 
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broadly interpreted by the examiner, and would clearly encompass c . . . separately . . . private . . . 
at least two key pairs with at least two mail servers, . . . domain . . . '.); 

Further, as per claim 22; this claim is the method embodied software (i.e., network 
download, etc., col. 2,lines 3-14) for the method claim 1 1 above, and is rejected for the same 
reasons provided for the claim 1 1 rejection. 

17. Claim 12 additionally recites the limitation that; "The method of Claim 10, wherein each 
private component of each key pair employs a mail server associated with the domain to forward 
the digitally signed message towards the recipient of the message". 

The teachings of Gupta et al are directed towards such limitations (i.e., Abstract, figures 1-8, and 
accompanying descriptions, whereas the ' . . . filter point, such as a router or firewall to an 
intranet . . . ' whereby the messages pass through controlled intermediaries, insofar as the network 
consists of a plurality of sender/recipient nodes of which common DNS/intermediaries (utilized 
in the filtering and forwarding, irrespective of the source or destination node proximity to any 
given individual router or firewall nodes), clearly teaches the use of the claim limitation plural 
node aspects (i.e., sender/intermediary/recipient in a multicast environment) as broadly 
interpreted by the examiner, and would clearly encompass 4 . . . private . . . key . . . mail server 
associated ... to forward the . . . message towards the recipient of the message ...'.); 

Further, as per claim 23; this claim is the method embodied software (i.e., network 
download, etc., col. 2,lines 3-14) for the method claim 12 above, and is rejected for the same 
reasons provided for the claim 12 rejection. 
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18. Claim 13 additionally recites the limitation that; "The method of Claim 1, further 
comprising 

employing one of a plurality of mail servers associated with the domain to digitally sign 
the message with the private component of the key pair and 

forward the digitally signed message towards the recipient.". 
The teachings of Gupta et al are directed towards such limitations (i.e., Abstract, figures 1-8, and 
accompanying descriptions, whereas the ' . . . filter point, such as a router or firewall to an 
intranet . . . ' whereby the messages pass through controlled intermediaries, insofar as the network 
consists of a plurality of sender/recipient nodes of which common DNS/intermediaries (utilized 
in the filtering and forwarding, irrespective of the source or destination node proximity to any 
given individual router or firewall nodes), clearly teaches the use of the claim limitation plural 
node aspects (i.e., sender/intermediary/recipient in a multicast environment) as broadly 
interpreted by the examiner, and would clearly encompass c . . . plurality of mail servers . . . sign 
the message . . . private . . . key . . . forward . . . message towards the recipient ...'.). 

19. As per claim 14; this claim is the combination of claims 1,5-8 above, and is rejected for 
the same reasons provided for the claims 1,5-8 rejection. 

20. Claim 15 additionally recites the limitation that; "The system of claim 14, wherein the 
message is at least one of 

an email, 

instant message (IM), 
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short message service (SMS).". 
The teachings of Gupta et al are directed towards such limitations (i.e., Abstract, figures 1-8, and 
accompanying descriptions, whereas the packet messages per se, in the aggregate, form larger 
messages, as broadly interpreted by the examiner, and would clearly encompass ' . . . email ...'.). 

21. Claim 16 additionally recites the limitation that; "The system of Claim 14, further 
comprises 

a text record that is accessible to the DNS and 

which includes at least the public component of the key pair.". 
The teachings of Gupta et al are directed towards such limitations (i.e., figures 4-8, and 
particularly figure 5, and accompanying descriptions, whereas the 'install the public keys. . . ' 
which clearly as stored in memory so as to be transferred from, as broadly interpreted by the 
examiner would clearly encompass ' . . . a text record . . . DNS and which includes . . . public ... of 
the key pair ...'.). 

22. Claim 17 additionally recites the limitation that; "The system of Claim 14, further 
comprises a selector that is associated with the key pair, wherein the selector is employable to 
identify the key pair's public component for accessing by the DNS ". 

The teachings of Gupta et al are directed towards such limitations (i.e., figures 4-8, and 
particularly figure 5, and accompanying descriptions, whereas the 'distribute ... keys... ' which 
clearly indicate that the key pairs can be selected as a function of (i.e., in a multicast, at the very 
least, environment) specifically designated nodes, as broadly interpreted by the examiner would 
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clearly encompass ' . . . selector . . . associated with the key pair, . . . identify the key . . . public 
component . . . DNS ...'.)- 

23. Claim 18 additionally recites the limitation that; "The system of Claim 14, further 
comprising a plurality of key pairs that are associated with at least two different clients, wherein 
each public component of each key pair is accessible by the DNS associated with the domain.". 
The teachings of Gupta et al are directed towards such limitations (i.e., Abstract, figures 1-8, and 
accompanying descriptions, whereas the \ .. filter point, such as a router or firewall to an 
intranet . . . ' whereby the messages pass through controlled intermediaries, insofar as the network 
consists of a plurality of sender/recipient nodes of which common DNS/intermediaries (utilized 
in the filtering), clearly teaches the use of the claim limitation plural node aspects (i.e., 
sender/intermediary/recipient in a multicast environment) as broadly interpreted by the examiner, 
and would clearly encompass ' . . . plurality of key pairs ... at least two different senders . . . key 

. . . accessible by the DNS associated with the domain ...'.). 

24. As per claim 24; this claim is the claim 1 above such that the client perspective is recited 
as the distinguishing limitation difference, and is rejected for the same reasons provided for the 
claim 1 rejection, insofar as the teachings of Gupta et al are clearly directed towards the client 
and server implementations of the network sending/receiving nodes. 

25. Claim 25 additionally recites the limitation that; "The client of Claim 24, further 
comprising 
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enabling the generation of a plurality of key pairs associated with the domain, 

wherein at least two key pairs are associated with at least two different senders 

and 

wherein each public component of each key pair is accessible by the DNS 
associated with the domain.". 
The teachings of Gupta et al are directed towards such limitations (i.e., Abstract, figures 1-8, and 
accompanying descriptions, whereas the ' . . . filter point, such as a router or firewall to an 
intranet . . . 5 whereby the messages pass through controlled intermediaries, insofar as the network 
consists of a plurality of sender/recipient nodes of which common DNS/intermediaries (utilized 
in the filtering), clearly teaches the use of the claim limitation plural node aspects (i.e., 
sender/intermediary/recipient in a multicast environment) as broadly interpreted by the examiner, 
and would clearly encompass ' . . . plurality of key pairs ... at least two different senders . . . key 
. . . accessible by the DNS associated with the domain ...'.). 

26. Claim 26 additionally recites the limitation that; "The client of Claim 25, further 
comprising enabling the separate association of private components of the at least two key pairs 
with at least two mail servers, wherein the at least two mail servers are associated with the 
domain.". 

The teachings of Gupta et al are directed towards such limitations (i.e., Abstract, figures 1-8, and 
accompanying descriptions, whereas the ' . . . filter point, such as a router or firewall to an 
intranet . . . ' whereby the messages pass through controlled intermediaries, insofar as the network 
consists of a plurality of sender/recipient nodes of which common DNS/intermediaries (utilized 
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in the filtering, at the individual router or firewall nodes), clearly teaches the use of the claim 
limitation plural node aspects (i.e., sender/intermediary/recipient in a multicast environment) as 
broadly interpreted by the examiner, and would clearly encompass ' . . . separately . . . private . . . 
at least two key pairs with at least two mail servers, . . . domain . . . \). 

27. Claim 27 additionally recites the limitation that; "The client of Claim 25, farther 
comprising enabling each private component of each key pair to employ a mail server associated 
with the domain to forward the digitally signed message towards the recipient of the message.". 
The teachings of Gupta et al are directed towards such limitations (i.e., Abstract, figures 1-8, and 
accompanying descriptions, whereas the . . filter point, such as a router or firewall to an 
intranet . . . ' whereby the messages pass through controlled intermediaries, insofar as the network 
consists of a plurality of sender/recipient nodes of which common DNS/intermediaries (utilized 
in the filtering and forwarding, irrespective of the source or destination node proximity to any 
given individual router or firewall nodes), clearly teaches the use of the claim limitation plural 
node aspects (i.e., sender/intermediary/recipient in a multicast environment) as broadly 
interpreted by the examiner, and would clearly encompass c ... private . . . key . . . mail server 
associated ... to forward the . . . message towards the recipient of the message ...*.). 

28. As per claim 28; this claim is the claim 1 above such that the client perspective is recited 
as the distinguishing limitation difference, and is rejected for the same reasons provided for the 
claim 1 rejection, insofar as the teachings of Gupta et al are clearly directed towards the client 
and server implementations of the network sending/receiving nodes. 
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Response to Amendment 

29. As per applicant's argument concerning the lack of teaching by Gupta et al of "a key pan- 
associated with a domain", "a sender address associated with a domain", and "... associated with 
the senders address", etc., the examiner has fially considered the arguments and finds them not to 
be persuasive. The phrase "key pair associated . . . domain", at the very least, deals with a broad, 
and clearly non-specific, relationship to a network domain. Further, the multicast / broadcast 
aspects of the Gupta et al teachings, clearly encompasses groups of IP addresses, as this is an 
inherently broad definition of the phrase "domain" in of itself, in that the claim language 

". . .associated . . . domain . . .", as broadly interpreted by the examiner, is therefore in itself 
sufficiently broad, thereby not further patently distinguishing the claim nor overcoming the 
rejection. Therefore, the Gupta et al aspects of the structure of the grouping of network nodes 
(i.e., by node, by group, or by domain), being associated, in a non-specific way as per the claim 
language with a cryptographic key(s), would therefore be applicable in the rejection, such that 
the rejection support references collectively encompass the said claim limitations in their 
entirety. Further, to patently distinguish the claimed invention from prior art, the association to 
the domain as far as key(s) relationship thereof, must be recited as part of the claim language. 

30. THIS ACTION IS MADE FINAL. Applicant is reminded of the extension of time 
policy as set forth in 37 CFR 1. 136(a). 

A shortened statutory period for reply to this final action is set to expire THREE 
MONTHS from the mailing date of this action. In the event a first reply is filed within TWO 
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MONTHS of the mailing date of this final action and the advisory action is not mailed until after 
the end of the THREE-MONTH shortened statutory period, then the shortened statutory period 
will expire on the date the advisory action is mailed, and any extension fee pursuant to 37 
CFR 1 .136(a) will be calculated from the mailing date of the advisory action. In no event, 
however, will the statutory period for reply expire later than SIX MONTHS from the mailing 
date of this final action. 
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Conclusion 



3 1 . Any inquiry concerning this communication or earlier communications from examiner 
should be directed to Ronald Baum, whose telephone number is (571) 272-3861, and whose 
unofficial Fax number is (571) 273-3861. The examiner can normally be reached Monday 
through Friday from 8:00 AM to 5:30 PM 

If attempts to reach the examiner by telephone are unsuccessful, the examiner's 
supervisor, Ayaz Sheikh, can be reached at (571) 272-3795. The Fax number for the organization 
where this application is assigned is 703-872-9306. 

Ronald Baum , 



Patent Examiner 
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